Table of Contents
Advertisement
NB3710
User Manual for NRSW version 4.4
Parameter
Action
IKE Authentication
NetModule routers support IKE authentication through pre-shared keys (PSK) or certificates within a
public key infrastructure. Extended Authentication (XAUTH) leverages RADIUS-like authentication and
can be used to apply user level access control over IPSec.
Using PSK requires the following settings:
Parameter
PSK
Local ID Type
Local ID
Remote ID Type
Remote ID
When using certificates you would need to specify the operation mode. When run as PKI client (ini-
tiator) you can create a Certificate Signing Request (CSR) in the certificates section which needs to
be submitted at your Certificate Authority and imported to the router afterwards. In PKI server mode
(concentrator), the router represents the Certificate Authority and issues the certificates for remote
peers. They are revokable.
Using XAUTH the following settings can be made:
Parameter
User name
User password
Group name
Group password
IPsec General Settings
The action to perform if a peer disconnects. Available choices from
the drop-down menu are to clear, hold or to Restart the peer.
IPsec IKE Authentication Settings
The pre-shared key used to authenticate at the peer
The type of identification for the local ID which can be a FQDN,
username@FQDN or IP address
The local ID value
The type of identification for the remote ID
The remote ID value
IPsec XAUTH Settings
The name of the XAUTH user
The password of the XAUTH user
The group ID
The group secret
117
Advertisement
Table of Contents
Need help?
Do you have a question about the NB3710 and is the answer not in the manual?
Questions and answers